Summary: A variety of threat modeling frameworks, including MITRE’s newly launched EMB3D, are gaining popularity among manufacturers of devices and industrial control systems (ICS). These frameworks aim to categorize potential threats and provide mitigations for device security during the design phase. By enhancing collaboration among device manufacturers, cybersecurity vendors, and infrastructure operators, these models seek to improve overall security resilience against emerging threats.
Affected: Device manufacturers, industrial control systems (ICS), cybersecurity vendors
Keypoints :
- MITRE’s EMB3D framework provides a structured approach to threat modeling, including recommendations for mitigating specific device threats.
- Other frameworks like Microsoft’s STRIDE and ATT&CK for ICS also assist in identifying and categorizing threats within technology assets.
- Adopting frameworks like EMB3D can help manufacturers proactively address potential threats during device design and adapt to evolving cyber risks over time.
Source: https://www.darkreading.com/threat-intelligence/mitre-emb3d-ot-ics-threat-modeling